Enrico Zini pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d99b857f by Enrico Zini at 2022-06-24T14:29:16+02:00
Marked CVEs as ignored for stretch and jessie, where there is no SecureBoot
support
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15405,24 +15405,32 @@ CVE-2022-28736
- grub2 2.06-3
[bullseye] - grub2 <no-dsa> (Minor issue, fix via point release)
[buster] - grub2 <no-dsa> (Minor issue, fix via point release)
+ [stretch] - grub2 <ignored> (No SecureBoot support in stretch)
+ [jessie] - grub2 <ignored> (No SecureBoot support in jessie)
NOTE: https://www.openwall.com/lists/oss-security/2022/06/07/5
CVE-2022-28735
RESERVED
- grub2 2.06-3 (bug #1001057)
[bullseye] - grub2 <no-dsa> (Minor issue, fix via point release)
[buster] - grub2 <no-dsa> (Minor issue, fix via point release)
+ [stretch] - grub2 <ignored> (No SecureBoot support in stretch)
+ [jessie] - grub2 <ignored> (No SecureBoot support in jessie)
NOTE: https://www.openwall.com/lists/oss-security/2022/06/07/5
CVE-2022-28734
RESERVED
- grub2 2.06-3
[bullseye] - grub2 <no-dsa> (Minor issue, fix via point release)
[buster] - grub2 <no-dsa> (Minor issue, fix via point release)
+ [stretch] - grub2 <ignored> (No SecureBoot support in stretch)
+ [jessie] - grub2 <ignored> (No SecureBoot support in jessie)
NOTE: https://www.openwall.com/lists/oss-security/2022/06/07/5
CVE-2022-28733
RESERVED
- grub2 2.06-3
[bullseye] - grub2 <no-dsa> (Minor issue, fix via point release)
[buster] - grub2 <no-dsa> (Minor issue, fix via point release)
+ [stretch] - grub2 <ignored> (No SecureBoot support in stretch)
+ [jessie] - grub2 <ignored> (No SecureBoot support in jessie)
NOTE: https://www.openwall.com/lists/oss-security/2022/06/07/5
CVE-2022-28732
RESERVED
@@ -61114,18 +61122,24 @@ CVE-2021-3697
- grub2 2.06-3
[bullseye] - grub2 <no-dsa> (Minor issue, fix via point release)
[buster] - grub2 <no-dsa> (Minor issue, fix via point release)
+ [stretch] - grub2 <ignored> (No SecureBoot support in stretch)
+ [jessie] - grub2 <ignored> (No SecureBoot support in jessie)
NOTE: https://www.openwall.com/lists/oss-security/2022/06/07/5
CVE-2021-3696
RESERVED
- grub2 2.06-3
[bullseye] - grub2 <no-dsa> (Minor issue, fix via point release)
[buster] - grub2 <no-dsa> (Minor issue, fix via point release)
+ [stretch] - grub2 <ignored> (No SecureBoot support in stretch)
+ [jessie] - grub2 <ignored> (No SecureBoot support in jessie)
NOTE: https://www.openwall.com/lists/oss-security/2022/06/07/5
CVE-2021-3695
RESERVED
- grub2 2.06-3
[bullseye] - grub2 <no-dsa> (Minor issue, fix via point release)
[buster] - grub2 <no-dsa> (Minor issue, fix via point release)
+ [stretch] - grub2 <ignored> (No SecureBoot support in stretch)
+ [jessie] - grub2 <ignored> (No SecureBoot support in jessie)
NOTE: https://www.openwall.com/lists/oss-security/2022/06/07/5
CVE-2021-40084 (opensysusers through 0.6 does not safely use eval on files in
sysusers ...)
- opensysusers 0.6-3 (bug #992058)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d99b857fbcd94b7408671d299fc380eb54e63ea5
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d99b857fbcd94b7408671d299fc380eb54e63ea5
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
